William (Bill) Wilson CISA, CGEIT

William (Bill) Wilson CISA, CGEIT
CEO, Founder and Managing Partner
IT Governance, Audit and Privacy Specialist


Whether your needs are for contracted or permanent resources, or that highly qualified executive to lead your organization, Breckenhill has the right certified professional for you!

William (Bill) Wilson CISA, CGEIT

Bill has over thirty years of executive management, consulting, auditing and hands-on software engineering experience. As an IT Governance, Audit and Privacy Specialist, his consulting practice has concentrated on IT security and privacy issues in large public sector systems. He has built a reputation among CEOs, CIOs and members of the audit community as a mentor and source of good counsel with unmatched integrity and confidentiality.

A master of big vision and small details, he brings in-depth technical IT knowledge and experience to aligning computing power and resources with the business vision and goals. Bill is also an expert in mastering the challenges of corporate governance, organizational design and management control in today's dynamic business and technical environment.

He brings astute analysis, workable solutions and risk mitigation strategies for the daily problems faced by public and private sector executives struggling with governance and privacy control challenges in the increasingly invasive, complex and rapidly changing technical environment of the internet, collaborative software and business intelligence.


Bill has extensive mix of public and private sector experience. Bill is the Senior Privacy Advisor for M3AAWG, an international organization focused on industry collaboration, technology, and public policy to successfully address the various forms of abuse, such as malware, spam, viruses, denial-of-service attacks and other exploitations.  As Chief Privacy Technologist for the Office of the Privacy Commissioner of Canada Mr. Wilson lead the Technology Analysis Branch. In this role he was responsible for increasing the technical capabilities of the OPC by teaming together the brightest and best research technologists and IT auditors and building the technology lab into a world leading privacy research facility.  Prior to holding the position of Chief privacy Technologist Mr. Wilson held the role of Senior Advisor where he was responsible for defining, conducting and reporting on the IT components of audits related to the protection of personal information for both public and private sector organizations. As Senior Strategic Technology Officer for the Bank of Montreal's e-commerce subsidiary, Cebra Inc., he designed and managed the implementation of major portions of the MERX on-line billing and public tendering system used by the Government of Canada.

Driven at all times by the business imperative, Bill developed overall enterprise plans, proposed basic technology philosophies, architectural and infrastructure vision. He planned the acquisition of computer hardware, operating and application software systems, as well as conducted technical due diligence assessments of potential corporate strategic partnerships. Upon recognizing a risk management gap, he developed a risk analysis and assessment methodology for conducting developing system audits at the Bank of Montreal, now part of its risk management policy.


Bill developed the Privacy Risk Oversight Framework used by Citizenship and Immigration Canada to ensure sufficient privacy risk analysis and ongoing privacy oversight was implemented for their Biometric Enrollment project going into 138 Visa Application Centers world-wide.  Bill created and implemented WinExports, a Canadian business database running on a secure network in all of Canada's trade offices and diplomatic posts throughout the world. Funded by World University Service of Canada (WUSC) and the Canada Revenue Agency (CRA), he led a development team in computerizing the internal revenue system for the island of St. Lucia, and, funded by CIDA, analyzed business requirements and developed a computerized ledger system for the Caribbean Development Bank (CDB).

Other international development IT initiatives have taken Bill to Canadian embassies and consular locations to implement highly secure systems. He has worked in Beijing, Taipei and Hong Kong as part of a privacy audit of the Canada Passport Office for the Office of the Privacy Commissioner of Canada. He also conducted, for the Privacy Commissioner, an evaluation and performance audit of the impact of the Treasury Board Secretariat's policy on Privacy Impact Assessments. His report "PC"s at the Posts" is considered a landmark on computer security and on the benefits of introducing personal computers at CIDA posts.

He has conducted IT security audits using COBIT and similar standards of the British Columbia Lottery Corporation and the Canadian Pharmacists Association. He has reviewed the configuration management used by Public Works and Government Services Canada (PWGSC) for the federal government's computer and telecommunications holdings.

He has spoken and presented on the topics of privacy and security at conferences all over the world.


Bill has a Diploma in Computer Sciences (Herzing College, Ottawa) and is a Certified Information Systems Auditor (CISA) and Certified in the Governance of Enterprise IT (CGEIT), both received from the Information Systems Audit and Control Association (ISACA). He has extensive teaching experience including developing and delivering Computer Crime Investigative Techniques, for the Royal Canadian Mounted Police and a computer audit and security course developed and delivered to the Canada Revenue Agency. He is a much sought-after speaker in the privacy and IT audit and security community.